CVE-2013-4845

HP Officejet Pro 8500 Firmware - Cross-Site Scripting

Title source: llm

Description

Cross-site scripting (XSS) vulnerability on HP Officejet Pro 8500 (aka A909) All-in-One printers allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory x_refsource_hp

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04035829

Scores

EPSS 0.0062

EPSS Percentile 70.3%

Details

CWE

CWE-79

Status published

Products (9)

hp/officejet_pro_8500 cb022a

hp/officejet_pro_8500 cb023a

hp/officejet_pro_8500 cb025a

hp/officejet_pro_8500 cb793a

hp/officejet_pro_8500 cb794a

hp/officejet_pro_8500 cb862a

hp/officejet_pro_8500 cb874a

hp/officejet_pro_8500 cn539a

hp/officejet_pro_8500_firmware

Published Dec 14, 2013

Tracked Since Feb 18, 2026